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AMENDMENTS TO THE CLAIMS 



The listing of claims will replace all prior versions, and listings, of claims in the 
application: 

Listing of Claims 



device (PP1,PP2) and a second characteristic of a second device (NP1,NP2) by a 
server (S1,AS2) , tho method be i ng tr i gg e red by a requ e st (50) for li nking and 
comprising the fo l low i ng steps of: 

receiving a request for triggering a linking between said first device and said 
second device: 

selecting f?§) a first linking information and a second linking information, the first 
linking information matching to the second linking information, 

sending (100,150) from the sen/er (S1,AS2) the first linking information to the first 
device (PP1,PP2) and the second linking information to the second device (NP1,NP2) , 

presenting (200,250) by the first device (PP1,PP2) the first linking information 
and by the second device (NP1,NP2) the second linking information, 

entering (SOO) into the first device (PP1,PP2) an indication of the matching of the 
first linking information and the second linking information, 

based on the entered indication of the matching, sending <400) to the server 
(S1,AS2) a matching confirmation for confirming the matching to the server (S1,AS2) , 

associating (450) the first characteristic and the second characteristic based on 
the received matching confirmation. 

2. (Currently Amended) The method according to claim 1 , wherein the m e thod 
i s us e d for authentication, the request (50) for linking is a request for authentication and 
the first device (PP1,PP2) is a trusted device within said communication network , further 
comprising the step of stating the association ( 4 50) by an authentication assertion. 



1. 



(Currently Amended) 



A method for linking of a first characteristic of a first 
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3. (Previously Presented) The method according to claim 2. wherein the 
authentication assertion is sent for granting access. 

4. (Currently Amended) The method according to claim 1 any of th e prec e ding 
c l a i ms , wherein the first device (PP1,PP2) is a trusted device and the first characteristic 
relates to an access legitimization legitimating the trusted device for accessing a first 
institution. 

5. (Currently Amended) The method according to claim 4, wherein the second 
characteristic comprises an identifier identifying the second device (NP1,NP2) and 
access to a second institution is granted to or via the second device (NP1,NP2) based 
on the associating (^50) of the first characteristic relating to the access legitimization 
and the second characteristic comprising the identifier, the second institution being 
identical to or different from the first institution. 

6. (Currently Amended) The method according to claim 1 any of the preceding 
c l a i ms , wherein the first linking information and the second linking information comprise 
one or more randomly generated symbols. 

7. (Currently Amended) The method according to claim 1 any of th e pr e c e ding 
c l a i ms , wherein the first linking information is identical to the second linking information. 

8. (Currently Amended) The method according to claim 1 any of th e pr e c e ding 
c l a i ms , wherein the associating (450) is based on a verification for correctness of 
confirmation data entered into the first device (PP1,PP2) . 

9. (Previously Presented) The method according to claim 8, wherein the entered 
confirmation data comprises at least one of 

(a) a Personal Identification Number, 

(b) a password, 
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(c) an indication for additional infonnation being presented In parallel to the 
first linking information or second linking information, the additional infonnation being 
distinguishable from the first linking information and the second linking information, and 

(d) data being computed on the base of the first linking information and/or the 
second linking information. 

10. (Currently Amended) A server (S1,AS2) usable for linking of a first 
characteristic of a first device (PP1,PP2) and a second characteristic of a second device 
(NP1,NP2) , the server (S1,AS2) comprising: 

a receiving unit for receiving messages, 

a transmitting unit for sending messages, and 

a processing unit for processing messages and information, 

wherein the receiving unit is adapted to receive a request (SO) for linking, the 
processing unit is adapted to be triggered by the received request (50) for linking and to 
select a first linking information and a second linking information, the first linking 
information matching to the second linking information, the transmission unit is adapted 
to send the first linking information to the first device (PP1,PP2) and the second linking 
information to the second device (NP1,NP2) , the receiving unit is adapted to receive a 
matching confirmation from the first device (PP1,PP2) , the matching confirmation 
confirming to the processing unit the matching of the first linking information presented 
by the first device (PP1,PP2) and the second linking information presented by the 
second device (NP1,NP2) , and the processing unit is adapted to execute an 
associating (^50) of the first characteristic and the second characteristic based on the 
received matching confirmation. 

11. (Currently Amended) The server (S1,AS2) according to claim 10, wherein 
the server (S1,AS2) is used for authentication, the request (§0) for linking is a request 
for authentication and the first device (PP1,PP2) is a trusted device, the processing unit 
being further adapted to state the association ( 4 50) by an authentication assertion. 
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12. (Currently Amended) The server (S1,AS2) according to claim 11, wherein 
the transmission unit is adapted to send the authentication assertion for granting 
access. 

1 3. (Currently Amended) The server (S1,AS2) according to claim 10 any of th e 
c l aims 10 to 12 , wherein the first device (PP1,PP2) is a trusted device and the first 
characteristic relates to an access legitimization legitimating the trusted device for 
accessing a first institution. 

14. (Currently Amended) The server (S1,AS2) according to claim 13, wherein 
the second characteristic comprises an identifier identifying the second device and, 
based on the associating (^50) of the first characteristic relating to the access 
legitimization and the second characteristic comprising the identifier, the processing unit 
is adapted to generate an access assertion for granting to or via the second device 
(NP1,NP2) access to a second institution being identical or different from the first 
institution, and the transmission unit is adapted to send the access assertion to the 
second device (NP1,NP2) or the second institution or to an entity supporting the second 
device (NP1,NP2) or the second institution for granting access. 

1 5. (Currently Amended) The server (S1,AS2) according to claim 10 anv of th e 
c l aims 10 to ^A , wherein the processing unit is adapted to select the first linking 
information and the second linking information to comprise one or more randomly 
generated symbols. 

16. (Currently Amended) The server according to claim 10 (S1,AS2) according 
to any of the c l a i ms 10 to 15 , wherein the processing unit is adapted to select the first 
linking information being identical to the second linking information. 

1 7. (Currently Amended) The server according to claim 10 (S1.AS2) accord i ng 
to any of th e c l aims 10 to 16 , wherein the processing unit is adapted to execute the 
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associating (d50) of the first characteristic and the second characteristic based on a 
verification for correctness of confimnation data entered into the first device (PP1,PP2) . 



characteristic of a first device (PP1,PP2) and a second characteristic of a second device 
(NP1,NP2) . the computer program being loadable into a processing unit of a server 
(S1,AS2) , wherein the computer program comprises: 

code adapted to be triggered by a request (§0) for linking, to select a first linking 
information and a second linking information, the first linking information matching to the 
second linking information, to initialize a sending of the first linking information to the 
first device (PP1,PP2) and a sending of the second linking information to the second 
device (NP1,NP2) , and to execute an associating {4§0) of the first characteristic and the 
second characteristic based on a matching confirmation received from the first device 
(PP1,PP2) , the matching confimnation confinning to the computer program the matching 
of the first linking information presented by the first device (PP1,PP2) and the second 
linking information presented by the second device (NP1,NP2) . 

19. (New) The computer program of claim 18 wherein the association is further 
based on a verification for correctness of confirmation data entered into the first device. 

20. (New) The computer program of claim 19 wherein said entered confirmation data 
includes a password. 



1 8. (Currently Amended) 



A computer program usable for linking of a first 
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